mirror of
				https://github.com/go-gitea/gitea.git
				synced 2025-10-26 12:27:06 +00:00 
			
		
		
		
	 e1c2d05bde
			
		
	
	e1c2d05bde
	
	
	
		
			
			* Fix #27645 * Add config options `MATH_CODE_BLOCK_DETECTION`, problematic syntaxes are disabled by default * Fix #33639 * Add config options `RENDER_OPTIONS_*`, old behaviors are kept
		
			
				
	
	
		
			299 lines
		
	
	
		
			8.9 KiB
		
	
	
	
		
			Go
		
	
	
	
	
	
			
		
		
	
	
			299 lines
		
	
	
		
			8.9 KiB
		
	
	
	
		
			Go
		
	
	
	
	
	
| // Copyright 2024 The Gitea Authors. All rights reserved.
 | |
| // SPDX-License-Identifier: MIT
 | |
| 
 | |
| package markup
 | |
| 
 | |
| import (
 | |
| 	"context"
 | |
| 	"fmt"
 | |
| 	"io"
 | |
| 	"net/url"
 | |
| 	"strconv"
 | |
| 	"strings"
 | |
| 	"time"
 | |
| 
 | |
| 	"code.gitea.io/gitea/modules/markup/internal"
 | |
| 	"code.gitea.io/gitea/modules/setting"
 | |
| 	"code.gitea.io/gitea/modules/util"
 | |
| 
 | |
| 	"github.com/yuin/goldmark/ast"
 | |
| 	"golang.org/x/sync/errgroup"
 | |
| )
 | |
| 
 | |
| type RenderMetaMode string
 | |
| 
 | |
| const (
 | |
| 	RenderMetaAsDetails RenderMetaMode = "details" // default
 | |
| 	RenderMetaAsNone    RenderMetaMode = "none"
 | |
| 	RenderMetaAsTable   RenderMetaMode = "table"
 | |
| )
 | |
| 
 | |
| var RenderBehaviorForTesting struct {
 | |
| 	// Gitea will emit some additional attributes for various purposes, these attributes don't affect rendering.
 | |
| 	// But there are too many hard-coded test cases, to avoid changing all of them again and again, we can disable emitting these internal attributes.
 | |
| 	DisableAdditionalAttributes bool
 | |
| }
 | |
| 
 | |
| type RenderOptions struct {
 | |
| 	UseAbsoluteLink bool
 | |
| 
 | |
| 	// relative path from tree root of the branch
 | |
| 	RelativePath string
 | |
| 
 | |
| 	// eg: "orgmode", "asciicast", "console"
 | |
| 	// for file mode, it could be left as empty, and will be detected by file extension in RelativePath
 | |
| 	MarkupType string
 | |
| 
 | |
| 	// user&repo, format&style®exp (for external issue pattern), teams&org (for mention)
 | |
| 	// RefTypeNameSubURL (for iframe&asciicast)
 | |
| 	// markupAllowShortIssuePattern
 | |
| 	// markdownNewLineHardBreak
 | |
| 	Metas map[string]string
 | |
| 
 | |
| 	// used by external render. the router "/org/repo/render/..." will output the rendered content in a standalone page
 | |
| 	InStandalonePage bool
 | |
| }
 | |
| 
 | |
| // RenderContext represents a render context
 | |
| type RenderContext struct {
 | |
| 	ctx context.Context
 | |
| 
 | |
| 	// the context might be used by the "render" function, but it might also be used by "postProcess" function
 | |
| 	usedByRender bool
 | |
| 
 | |
| 	SidebarTocNode ast.Node
 | |
| 
 | |
| 	RenderHelper   RenderHelper
 | |
| 	RenderOptions  RenderOptions
 | |
| 	RenderInternal internal.RenderInternal
 | |
| }
 | |
| 
 | |
| func (ctx *RenderContext) Deadline() (deadline time.Time, ok bool) {
 | |
| 	return ctx.ctx.Deadline()
 | |
| }
 | |
| 
 | |
| func (ctx *RenderContext) Done() <-chan struct{} {
 | |
| 	return ctx.ctx.Done()
 | |
| }
 | |
| 
 | |
| func (ctx *RenderContext) Err() error {
 | |
| 	return ctx.ctx.Err()
 | |
| }
 | |
| 
 | |
| func (ctx *RenderContext) Value(key any) any {
 | |
| 	return ctx.ctx.Value(key)
 | |
| }
 | |
| 
 | |
| var _ context.Context = (*RenderContext)(nil)
 | |
| 
 | |
| func NewRenderContext(ctx context.Context) *RenderContext {
 | |
| 	return &RenderContext{ctx: ctx, RenderHelper: &SimpleRenderHelper{}}
 | |
| }
 | |
| 
 | |
| func (ctx *RenderContext) WithMarkupType(typ string) *RenderContext {
 | |
| 	ctx.RenderOptions.MarkupType = typ
 | |
| 	return ctx
 | |
| }
 | |
| 
 | |
| func (ctx *RenderContext) WithRelativePath(path string) *RenderContext {
 | |
| 	ctx.RenderOptions.RelativePath = path
 | |
| 	return ctx
 | |
| }
 | |
| 
 | |
| func (ctx *RenderContext) WithMetas(metas map[string]string) *RenderContext {
 | |
| 	ctx.RenderOptions.Metas = metas
 | |
| 	return ctx
 | |
| }
 | |
| 
 | |
| func (ctx *RenderContext) WithInStandalonePage(v bool) *RenderContext {
 | |
| 	ctx.RenderOptions.InStandalonePage = v
 | |
| 	return ctx
 | |
| }
 | |
| 
 | |
| func (ctx *RenderContext) WithUseAbsoluteLink(v bool) *RenderContext {
 | |
| 	ctx.RenderOptions.UseAbsoluteLink = v
 | |
| 	return ctx
 | |
| }
 | |
| 
 | |
| func (ctx *RenderContext) WithHelper(helper RenderHelper) *RenderContext {
 | |
| 	ctx.RenderHelper = helper
 | |
| 	return ctx
 | |
| }
 | |
| 
 | |
| // Render renders markup file to HTML with all specific handling stuff.
 | |
| func Render(ctx *RenderContext, input io.Reader, output io.Writer) error {
 | |
| 	if ctx.RenderOptions.MarkupType == "" && ctx.RenderOptions.RelativePath != "" {
 | |
| 		ctx.RenderOptions.MarkupType = DetectMarkupTypeByFileName(ctx.RenderOptions.RelativePath)
 | |
| 		if ctx.RenderOptions.MarkupType == "" {
 | |
| 			return util.NewInvalidArgumentErrorf("unsupported file to render: %q", ctx.RenderOptions.RelativePath)
 | |
| 		}
 | |
| 	}
 | |
| 
 | |
| 	renderer := renderers[ctx.RenderOptions.MarkupType]
 | |
| 	if renderer == nil {
 | |
| 		return util.NewInvalidArgumentErrorf("unsupported markup type: %q", ctx.RenderOptions.MarkupType)
 | |
| 	}
 | |
| 
 | |
| 	if ctx.RenderOptions.RelativePath != "" {
 | |
| 		if externalRender, ok := renderer.(ExternalRenderer); ok && externalRender.DisplayInIFrame() {
 | |
| 			if !ctx.RenderOptions.InStandalonePage {
 | |
| 				// for an external "DisplayInIFrame" render, it could only output its content in a standalone page
 | |
| 				// otherwise, a <iframe> should be outputted to embed the external rendered page
 | |
| 				return renderIFrame(ctx, output)
 | |
| 			}
 | |
| 		}
 | |
| 	}
 | |
| 
 | |
| 	return render(ctx, renderer, input, output)
 | |
| }
 | |
| 
 | |
| // RenderString renders Markup string to HTML with all specific handling stuff and return string
 | |
| func RenderString(ctx *RenderContext, content string) (string, error) {
 | |
| 	var buf strings.Builder
 | |
| 	if err := Render(ctx, strings.NewReader(content), &buf); err != nil {
 | |
| 		return "", err
 | |
| 	}
 | |
| 	return buf.String(), nil
 | |
| }
 | |
| 
 | |
| func renderIFrame(ctx *RenderContext, output io.Writer) error {
 | |
| 	// set height="0" ahead, otherwise the scrollHeight would be max(150, realHeight)
 | |
| 	// at the moment, only "allow-scripts" is allowed for sandbox mode.
 | |
| 	// "allow-same-origin" should never be used, it leads to XSS attack, and it makes the JS in iframe can access parent window's config and CSRF token
 | |
| 	// TODO: when using dark theme, if the rendered content doesn't have proper style, the default text color is black, which is not easy to read
 | |
| 	_, err := io.WriteString(output, fmt.Sprintf(`
 | |
| <iframe src="%s/%s/%s/render/%s/%s"
 | |
| name="giteaExternalRender"
 | |
| onload="this.height=giteaExternalRender.document.documentElement.scrollHeight"
 | |
| width="100%%" height="0" scrolling="no" frameborder="0" style="overflow: hidden"
 | |
| sandbox="allow-scripts"
 | |
| ></iframe>`,
 | |
| 		setting.AppSubURL,
 | |
| 		url.PathEscape(ctx.RenderOptions.Metas["user"]),
 | |
| 		url.PathEscape(ctx.RenderOptions.Metas["repo"]),
 | |
| 		ctx.RenderOptions.Metas["RefTypeNameSubURL"],
 | |
| 		url.PathEscape(ctx.RenderOptions.RelativePath),
 | |
| 	))
 | |
| 	return err
 | |
| }
 | |
| 
 | |
| func pipes() (io.ReadCloser, io.WriteCloser, func()) {
 | |
| 	pr, pw := io.Pipe()
 | |
| 	return pr, pw, func() {
 | |
| 		_ = pr.Close()
 | |
| 		_ = pw.Close()
 | |
| 	}
 | |
| }
 | |
| 
 | |
| func render(ctx *RenderContext, renderer Renderer, input io.Reader, output io.Writer) error {
 | |
| 	ctx.usedByRender = true
 | |
| 	if ctx.RenderHelper != nil {
 | |
| 		defer ctx.RenderHelper.CleanUp()
 | |
| 	}
 | |
| 
 | |
| 	finalProcessor := ctx.RenderInternal.Init(output)
 | |
| 	defer finalProcessor.Close()
 | |
| 
 | |
| 	// input -> (pw1=pr1) -> renderer -> (pw2=pr2) -> SanitizeReader -> finalProcessor -> output
 | |
| 	// no sanitizer: input -> (pw1=pr1) -> renderer -> pw2(finalProcessor) -> output
 | |
| 	pr1, pw1, close1 := pipes()
 | |
| 	defer close1()
 | |
| 
 | |
| 	eg, _ := errgroup.WithContext(ctx)
 | |
| 	var pw2 io.WriteCloser = util.NopCloser{Writer: finalProcessor}
 | |
| 
 | |
| 	if r, ok := renderer.(ExternalRenderer); !ok || !r.SanitizerDisabled() {
 | |
| 		var pr2 io.ReadCloser
 | |
| 		var close2 func()
 | |
| 		pr2, pw2, close2 = pipes()
 | |
| 		defer close2()
 | |
| 		eg.Go(func() error {
 | |
| 			defer pr2.Close()
 | |
| 			return SanitizeReader(pr2, renderer.Name(), finalProcessor)
 | |
| 		})
 | |
| 	}
 | |
| 
 | |
| 	eg.Go(func() (err error) {
 | |
| 		if r, ok := renderer.(PostProcessRenderer); ok && r.NeedPostProcess() {
 | |
| 			err = PostProcessDefault(ctx, pr1, pw2)
 | |
| 		} else {
 | |
| 			_, err = io.Copy(pw2, pr1)
 | |
| 		}
 | |
| 		_, _ = pr1.Close(), pw2.Close()
 | |
| 		return err
 | |
| 	})
 | |
| 
 | |
| 	if err := renderer.Render(ctx, input, pw1); err != nil {
 | |
| 		return err
 | |
| 	}
 | |
| 	_ = pw1.Close()
 | |
| 
 | |
| 	return eg.Wait()
 | |
| }
 | |
| 
 | |
| // Init initializes the render global variables
 | |
| func Init(renderHelpFuncs *RenderHelperFuncs) {
 | |
| 	DefaultRenderHelperFuncs = renderHelpFuncs
 | |
| 	if len(setting.Markdown.CustomURLSchemes) > 0 {
 | |
| 		CustomLinkURLSchemes(setting.Markdown.CustomURLSchemes)
 | |
| 	}
 | |
| 
 | |
| 	// since setting maybe changed extensions, this will reload all renderer extensions mapping
 | |
| 	extRenderers = make(map[string]Renderer)
 | |
| 	for _, renderer := range renderers {
 | |
| 		for _, ext := range renderer.Extensions() {
 | |
| 			extRenderers[strings.ToLower(ext)] = renderer
 | |
| 		}
 | |
| 	}
 | |
| }
 | |
| 
 | |
| func ComposeSimpleDocumentMetas() map[string]string {
 | |
| 	// TODO: there is no separate config option for "simple document" rendering, so temporarily use the same config as "repo file"
 | |
| 	return map[string]string{"markdownNewLineHardBreak": strconv.FormatBool(setting.Markdown.RenderOptionsRepoFile.NewLineHardBreak)}
 | |
| }
 | |
| 
 | |
| type TestRenderHelper struct {
 | |
| 	ctx      *RenderContext
 | |
| 	BaseLink string
 | |
| }
 | |
| 
 | |
| func (r *TestRenderHelper) CleanUp() {}
 | |
| 
 | |
| func (r *TestRenderHelper) IsCommitIDExisting(commitID string) bool {
 | |
| 	return strings.HasPrefix(commitID, "65f1bf2") //|| strings.HasPrefix(commitID, "88fc37a")
 | |
| }
 | |
| 
 | |
| func (r *TestRenderHelper) ResolveLink(link, preferLinkType string) string {
 | |
| 	linkType, link := ParseRenderedLink(link, preferLinkType)
 | |
| 	switch linkType {
 | |
| 	case LinkTypeRoot:
 | |
| 		return r.ctx.ResolveLinkRoot(link)
 | |
| 	default:
 | |
| 		return r.ctx.ResolveLinkRelative(r.BaseLink, "", link)
 | |
| 	}
 | |
| }
 | |
| 
 | |
| var _ RenderHelper = (*TestRenderHelper)(nil)
 | |
| 
 | |
| // NewTestRenderContext is a helper function to create a RenderContext for testing purpose
 | |
| // It accepts string (BaseLink), map[string]string (Metas)
 | |
| func NewTestRenderContext(baseLinkOrMetas ...any) *RenderContext {
 | |
| 	if !setting.IsInTesting {
 | |
| 		panic("NewTestRenderContext should only be used in testing")
 | |
| 	}
 | |
| 	helper := &TestRenderHelper{}
 | |
| 	ctx := NewRenderContext(context.Background()).WithHelper(helper)
 | |
| 	helper.ctx = ctx
 | |
| 	for _, v := range baseLinkOrMetas {
 | |
| 		switch v := v.(type) {
 | |
| 		case string:
 | |
| 			helper.BaseLink = v
 | |
| 		case map[string]string:
 | |
| 			ctx = ctx.WithMetas(v)
 | |
| 		default:
 | |
| 			panic(fmt.Sprintf("unknown type %T", v))
 | |
| 		}
 | |
| 	}
 | |
| 	return ctx
 | |
| }
 |